Page 0 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Compliance Effectiveness.

Slides:



Advertisements
Similar presentations
Organizational Governance
Advertisements

Issue Identification, Tracking, Escalation, and Resolution.
©2012 CliftonLarsonAllen LLP Educating Governance on the Audit Jackie Eckman, CPA Partner CliftonLarsonAllen LLP
Contractor Code of Business Ethics and Conduct Laura K. Kennedy Senior Vice President, Ethics and Compliance SAIC.
QUALITY ASSURANCE AND IMPROVEMENT PROGRAM (QAIP)
Areti Moularas, Senior Manager
Preparing for an External Quality Assessment of your Quality Assurance and Improvement Program Institute of Internal Auditors El Paso Chapter August 29,
EMS Auditing Definitions
IS Audit Function Knowledge
Quality evaluation and improvement for Internal Audit
CORPORATE COMPLIANCE OVERVIEW David Meisels OSB Corporate Counsel Roundtable April 26, 2012.
Purpose of the Standards
Supplier Ethics: Program Checklist
Corporate Ethics Compliance *
FPSC Safety, LLC ISO AUDIT.
ASPEC Internal Auditor Training Version
The Role of Risk Management and Assurance in Effective Organizational Governance Urton Anderson The University of Texas at Austin.
Building a Compliance Risk Monitoring Program HCCA Compliance Institute New OrleansApril 19, 2005 Lois Dehls Cornell, Esq. Assistant Vice President, Deputy.
Quality Representative Training Version
Compliance and Ethics Program NASVH – CFO Forum July 11, 2012 Presented By: Donna R. Burn Medicare Compliance Louisiana Department of Veterans Affairs.
Session 4: Good Governance: How SAIs influence Good Governance in Public Administration Zahira Ravat 27 & 28 May 2014.
Auditing Standards IFTA\IRP Audit Guidance Government Auditing Standards (GAO) Generally Accepted Auditing Standards (GAAS) International Standards on.
Elements of Internal Controls Preventing Fraud, Waste, and Abuse in Urban and Rural Transit Systems.
Minnesota Adoption of the Green Book April 16, 2015 Jo Kane Internal Control & Accountability Specialist.
Internal Auditing and Outsourcing
Federalwide Assurance Presentation for IRB Members.
Auditing an EMS for Conformance with EO 13423
Staff Structure Support HCCA Special Interest Group New Regulations: A Strategy for Implementation Sharon Schmid Vice President, Compliance and.
Put your organisation’s logo here. Conflicts of Interest A conflict occurs when the interests of one role/ position/ relationship are not aligned with.
BOARD FIDUCIARY RESPONSIBILITY – Understanding Oversight and Monitoring Roles Presented by: Dan Campbell, Partner.
An Educational Computer Based Training Program CBTCBT.
OECD Guidelines on Insurer Governance
By: 1. Kenneth A. Kim John R. Nofsinger And 2. A. C. Fernando.
Corporate governance: Asia Pacific. JAPAN  The Japan corporate governance committee published its revised code in The Code had six chapters, which.
CORPORATE COMPLIANCE Tim Timmons Vice President Compliance and Regulatory Services Health Future, LLC.
Wetlands Reserve Program Case Study An Overview of the External Audit Process Helping People Help The Land.
Developing and Implementing an Effective Compliance Program Mary Sacilotto,BA,CHC Chief Compliance Officer Alliance, Inc.
Establishing A Compliance Program: It Makes Sense
Transnational Studies IRB’s evaluation of a researcher’s plan for complying with local laws and customs when conducting transnational research.
Internal Audit’s Role in Compliance Laurisa Riggan, CPA, CHE Children’s Mercy Hospitals and Clinics September 26, 2000.
Appendix E – Checklist for Review of Performance Audits Presented by: Ashton Coleman Department of Defense Office of the Inspector General August 16, 2012.
Corporate Responsibility Regulatory Compliance “Systems that ensure all students are aware of laws and regulations and act in accordance of those regulations”
Focus Areas of Core Form 990, Section VI: Governance, Management and Disclosure New Obligation, New Opportunity.
Trends in Corporate Governance Dr. Sandra B. Richtermeyer, CMA, CPA President, Institute of Management Accountants (IMA) June 21, 2011.
Health Care Compliance Association Region VII Compliance Conference August 1, 2003.
Sarbanes Oxley Act. The Sarbanes Oxley Act consists of 11 Sections I – Public Company Accounting Oversight Board II – Auditor independence III – Corporate.
Promoting Effective Boards of Directors
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
BACKNEXT Georgia State University --- Expenditure Review Executive Summary -- Online Training Online Training for Georgia State University Expenditure.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
Page 1 of 23 DMC’S COMMITMENT TO COMPLIANCE: COMPLIANCE PROGRAM CODE OF CONDUCT 2009 DMC Corporate Audit and Compliance Department Detroit Medical Center©
Balance Between Audit/Compliance and Risk Management- Best Practices FIRMA 21 st National Training Conference Julia Fredricks, U.S. Chief Compliance Officer.
Copyright © 2007 Pearson Education Canada 7-1 Chapter 7: Audit Planning and Documentation.
An Overview: The Role of the Audit Committee in Monitoring, Oversight, and Compliance Derry Harper, Inspector General and Director of Compliance.
Consultant Advance Research Team. Outline UNDERSTANDING M&E DATA NEEDS PEOPLE, PARTNERSHIP AND PLANNING 1.Organizational structures with HIV M&E functions.
Tax Administration Diagnostic Assessment Tool MODULE 11 “POA 9: ACCOUNTABILITY AND TRANSPARENCY”
SOLGM Wanaka Retreat Health and Safety at Work Act 2015 Ready? 4 February 2016 Samantha Turner Partner DDI: Mob:
Page 1 Portfolio Committee on Water and Environmental Affairs 14 July 2009.
Annual Refresher.  Potential Abuse/Neglect (reference Human Rights training)  Apparent Conflicts of Interest  Something that inhibits a Productive.
Internal Audit Quality Assessment Guide
Government Auditing Standards
Update on the Latest Developments in Government Auditing Standards
Corporate Responsibility
Presented by Jean Fecteau OEO Fiscal Analyst
SAPS Audit Committee 26 October 2016.
ESEA Consolidated Monitoring
2017 Administration and Finance Conference
Understanding Your Audit Report
Risk Management: why and how to protect your health center
The Elements of appropriate Internal Controls
Presentation transcript:

Page 0 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Compliance Effectiveness Assessments Shannon Sumner, CPA Principal Georgia Hospital Association Compliance Officers Retreat September 3, 2014

Page 1 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Presentation Objectives Leading Practices in Compliance Programs Self Assessment Process Highlight Leading Practices in the Seven Elements Self Assessment Resources

Page 2 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Audience Questions – Experience New to Compliance Role (less than 1 year) In Honeymoon Phase (1-3 years) In Formative Years (4-5 years) Hitting Your Stride (6-10 years) Been There, Done That (>10 years)

Page 3 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Audience Questions – Size of Compliance Team Me, Myself, and I (1 person) Just the Two of Us (2 people) See No Evil, Hear No Evil, Speak No Evil (3 people) We are Family (4-5 people) Seriously? (>5 people)

Page 4 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Audience Questions – Duties Vanilla - Compliance Only Swirl - Internal Audit and Compliance Rocky Road - Everything!!

Page 5 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Headlines Hospitals must address employee fraud reports with procedural fairness

Page 6 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Self Assessment Process There is not one single best Compliance Assessment Tool! Collaborate with Internal Audit where possible. Partner with another Compliance Officer – peer review. Recommend Scoring Tool: ­ Facilitates Education and Training. ­ Facilitates Trending by Area.

Page 7 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Key Questions to Ask How would you rate your own Compliance Program (Scale 1 – 5, 5 Highest)? When was the last time your Compliance Program was audited? Have you called your organization‘s Compliance Hot Line? If someone in your organization is asked “Who is the Compliance Officer?” would they know what to say? Does your Audit/Compliance Committee ask tough questions? Are they engaged? Are you aware of (maintain a listing) all outsourced services and vendors?

Page 8 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Key Questions to Ask Are you aware of all of the joint ventures within your organization? Are you copied on all internal audit reports? Does your organization have a Fraud Policy and investigation protocol? Are you involved in exit interviews for all senior executives and other high risk areas? Do you receive a copy of the external audit Management Letter Comments? How comfortable are you that all Conflicts of Interest have been disclosed by Management, Governance, and Physicians?

Page 9 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Effectiveness Red Flags The Compliance Work Plan has a lot of “Plan to…” line items Little to no Hotline Activity No history of Compliance Effectiveness Assessments by outside parties No questions are asked by Compliance/Audit Committee members Auditing error percentages consistently high (>5%) Compliance Risk Assessment is conducted in a vacuum The Compliance Officer is not aware of the organization’s risk appetite/tolerance The Compliance Team has not received compliance specific education Action plans are consistently past due Risks identified through risk assessment are not addressed (internally or externally) Compliance is not advised of what may appear to be “routine” thefts or other human resource issues

Page 10 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat What is a “Leading Practice?”

Page 11 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat High Level Oversight Boards May Use Compliance as a Defense Strategy; Feds Expect More Oversight “Board members are increasingly entering the compliance fray, and five years from now compliance will have the same level of board oversight as the organization’s finances, a former federal prosecutor says. As regulators, prosecutors, stockholders and other stakeholders demand more from boards, they are asking management, including compliance officers, for more evidence that the compliance program is accomplishing its goals instead of merely rubber-stamping reports.” – Report on Medicare Compliance, August 4, 2014

Page 12 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat I - High Level Oversight Compliance Officer (“CO”) is not a member of senior management and does not have access to the Board of Directors. This could jeopardize the effectiveness of the Compliance program. CO Reports Directly to the CEO or equivalent (i.e., President) and has unfiltered access to the CEO. Organization must demonstrate that the CO’s reports reach the CEO. Lack of management understanding, involvement, and support of the compliance program – an organizational culture that does not put a priority on compliance. Industry Best Practice – The CEO’s incentive compensation is tied to the effectiveness of the compliance program.

Page 13 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat I - High Level Oversight (Con’t) Risk areas within the organization go undetected. Industry best practice - The compliance risk assessment is part of a broader enterprise wide risk assessment that includes input from departments such as internal audit, legal, quality, IT, risk management, etc. to ensure adequate coverage. Industry best practice - The risk assessment includes the potential for fraud.

Page 14 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat I - High Level Oversight (Con’t) Governance’s lack of support and knowledge of the Compliance Program. The Audit Committee has at least one member knowledgeable of healthcare compliance. The activities of the Audit Committee are reported to the full Board and the Compliance Officer presents at least an annual report to the Board. CMS Best Practice – Governing Body Resolution supporting the Compliance Program and adherence to compliant, lawful and ethical conduct. CO has executive session with the Board (without the CEO Present) on an annual basis. Assessments include feedback from the Audit Committee Chairperson, CEO and CO regarding the completeness of the compliance reports, the knowledge of committee members, the appropriateness of the committee discussion.

Page 15 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat II - Policies and Procedures Lack of policies and procedures that document the framework of the compliance program jeopardizes the effectiveness of the compliance program, and could lessen the ability to demonstrate to regulatory bodies the presence of an effective compliance program. Assess the extent to which policies and procedures are written clearly and include “real-life” examples. If Conflict of Interest disclosure statements are not obtained from each trustee, officer, Board or other committee member and key management and employees, unidentified conflicts of interest could exist that could compromise, or appear to compromise judgment. Review minutes of meetings from the appropriate governance body for the past 12 months to determine whether conflicts of interest were disclosed in accordance with policies and/or procedures.

Page 16 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat II - Policies and Procedures (Con’t) Departments that are impacted by regulatory changes are not aware of them which results in denial of claims and potential allegations of false claims. There are documented mechanisms to monitor regulatory updates, including National Coverage Determinations (“NCD”) and Local Coverage Determinations (“LCD”) and communicate them to the associates and medical staff members impacted by them. Associates might leave the organization with knowledge of potential compliance issues and subsequently become a whistle- blower. If exit interviews are completed for any associates, there is at least one question regarding knowledge of potential compliance exposure and a mechanism to inform the CO if any are identified.

Page 17 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Open Lines of Communication

Page 18 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat III - Open Lines of Communication Compliance issues could be occurring without being reported to management. Volumes of reports received are tracked and compared to prior periods and to industry norms. A leading practice is to have the capability of reporting to the hotline anonymously on- line. Exit interviews are conducted by the CO for high risk/leadership associates.

Page 19 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat IV - Training and Education New associates lack understanding of the compliance program and their related rights and responsibilities. CMS Best Practice - Mechanism to measure effectiveness of training. Industry Best Practice – Compliance Quizzes provided to Physicians/Medical Staff. CMS Best Practice - Training is provided in various formats to keep associates engaged (in person, on-line, games, etc.). Industry Best Practice - Connect headlines and case studies to real issues within organization. Industry Best Practice - Demonstrate linkage between organization’s strategies and a strong ethics and compliance program.

Page 20 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat IV - Training and Education (Con’t) Medical Staff lacks understanding of the compliance program and their related rights and responsibilities. Compliance education and information specific to regulatory changes that directly impact them is routinely provided to the Medical Staff. Compliance department staff are not kept current regarding compliance risk areas or leading practices for compliance programs. Compliance department staff attend conferences and webinars, subscribe to publications and the OIG’s list, monitor the OIG’s website and network with peers to stay up-to-date and get ideas. Governance lacks understanding of the compliance program and their related rights and responsibilities. Compliance education and information specific to the entity’s compliance program is provided to the Board members at least once every 24 months and the Board Audit Committee, if applicable, at least annually.

Page 21 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat V - Monitoring and Auditing False claims could be submitted if auditing and monitoring by qualified independent auditors does not occur. CMS - The compliance plan must include an independent assessment of the compliance program and be shared with the Board. CMS - The auditing/monitoring element must include “first tier” entities. This includes entities where the organization has outsourced key elements of their processes (i.e. billing, collections, quality, safety).

Page 22 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat VI - Response to Deficiencies Responses to deficiencies do not effectively address the deficiencies. Periodic reviews of problem areas were conducted to verify that the corrective actions successfully reduced or eliminated existing deficiencies. Deficiencies are not addressed on a timely basis. Corrective action plans are implemented within agreed- upon timetables.

Page 23 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat VII - Consistent Enforcement Inconsistent disciplinary or other actions are taken in response to compliance policies. CMS – Must maintain evidence of disciplinary action for a period of 10 years. Date violation reported Description of violation Date of investigation Summary of findings Disciplinary action taken Date disciplinary action taken CMS – If the HR function is responsible for conducting disciplinary actions there must be a formal process for communicating with the CO on actions taken. CMS - Publish de-identified disciplinary actions taken to demonstrate that the Sponsor acts on violations of the Standards of Conduct.

Page 24 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Self-Assessment Resources Audits/Downloads/Compliance-Program-Effectiveness-Self-Assessment-Questionnaire.pdf

Page 25 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Self Assessment Resources guidance/docs/Health_Care_Directors_Compliance_Duties.pdf

Page 26 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Self Assessment Resources Health Care Compliance Association

Page 27 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Questions?

Page 28 September 3, 2014 Compliance Effectiveness Assessments Prepared for Georgia Hospital Association Compliance Officers Retreat Thank You! Shannon Sumner, CPA Principal (865)

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.